PCI Perspectives

  From 10 July to 11 August, eligible PCI SSC stakeholders are invited to review and provide feedback on the draft PCI Secure Software Standard v2.0 during a 30-day request for comments (RFC) period.  

The PCI Security Standards Council (PCI SSC) has released version 3.2 of the PCI Point-to-Point Encryption (P2PE) Standard, introducing important clarifications and updates based on industry feedback. P2PE v3.2 is a minor revision of the standard, which expediently addresses stakeholder feedback while the Council continues developing the next major version – P2PE v4.0. All previously received stakeholder feedback in context of a major revision change will be considered as part of the current P2PE v4.0 revision effort.

  This episode of Coffee with the Council is brought to you by our podcast sponsor, Feroot. Welcome to our podcast series, Coffee with the Council. I’m Alicia Malone, Director of Communications and Public Relations for the PCI Security Standards Council. Today, I am so excited to bring you a sneak peek interview with PCI SSC’s North America Community Meeting Keynote Speaker, Reed Timmer. 

  We are pleased to welcome the newest organizations that have joined as Associate Participating Organizations of the PCI Security Standards Council (PCI SSC). These organizations play a crucial role in supporting the evolution of the PCI security standards and programs and promoting the implementation of PCI security standards worldwide to protect payment data. We look forward to their involvement with the Council as we help secure the future of payments.  

  Registration is now open for the PCI Security Standards Council’s 2025 Community Meetings! Register now and secure your experience filled with sessions led by industry experts, exciting keynotes, networking opportunities, and a vendor showcase you won’t forget.  

  From 16 June to 18 July, eligible PCI SSC stakeholders are invited to review and provide feedback on the draft PCI Key Management Operations (KMO) v1.0 Standard during a 30-day request for comments (RFC) period.    

  Take advantage of the great opportunities to elevate your brand presence and connect with potential buyers and industry leaders when you sponsor or exhibit at a 2025 PCI SSC Community Meeting!

The PCI Security Standards Council (PCI SSC) has published a major revision to PCI PIN Transaction Security (PTS) Point-of-Interaction (POI) Modular Security Requirements from version 6.2 to version 7.0. The PCI PTS POI Modular Security Requirements document enhances security controls to defend against physical tampering and the insertion of malware that can compromise card data during payment transactions. 

The PCI Data Security Standard (PCI DSS) includes several requirements in Requirement 6 and 11 that govern vulnerability management and reference related timeframes.

  This episode of Coffee with the Council is brought to you by our podcast sponsor, Feroot. Welcome to our podcast series, Coffee with the Council. I’m Alicia Malone, Director of Communications and Public Relations for the PCI Security Standards Council. In today’s episode, I’m excited to announce that the Council is launching a new Regional Engagement Board for India and South Asia. Regional Engagement Boards serve as advisors to PCI SSC on payment data security issues in specific geographies and markets. This will be the Council’s second REB, as it’s commonly referred to, after launching in Brazil in 2018. Joining me to discuss what this all means and how you can participate is the Council’s own Nitin Bhatnagar, Regional Director of India, South Asia, and the Middle East. Welcome, Nitin.